Google adds its top level domains to HSTS preload list

Second level domains under .how, .bot and more that have SSL will automatically get benefits of HSTS preload list. Google is adding the top level domain names it operates, including some that allow second level domain registrations by the public, to the HTTPS Strict Transport Security (HSTS) preload list. This list is used by major browsers to automatically enforce HTTPS-secured connections to domain names that are on the list. This prevents browsers from making unsecure connections (HTTP) to sites that should be secure (https). Even though landing on HTTP will forward to HTTPS, this relay can be intercepted. Second level domains are generally added individually to the list. This requires an extra step by site owners, and it takes a few months for updates to propagate to all browsers. By adding an entire top level domain to the list, any website under the top level domain ...